Technical Information
- <SYSTEM32>\tasks\oad1ejkrztov8g573p
- '%WINDIR%\syswow64\taskkill.exe' /im <File name>.exe /f
- %ALLUSERSPROFILE%\{6ohgtp3r-tslq-byak-bd9wrrulibvi}\iexplore.exe
- '3.###.37.138':80
- ClassName: '' WindowName: ''
- '%ALLUSERSPROFILE%\{6ohgtp3r-tslq-byak-bd9wrrulibvi}\iexplore.exe'
- '%ALLUSERSPROFILE%\{6ohgtp3r-tslq-byak-bd9wrrulibvi}\iexplore.exe' ' (with hidden window)
- '%WINDIR%\syswow64\schtasks.exe' /Create /SC MINUTE /MO 15 /TN "OAD1EJKRZTOV8G573P" /TR "%ALLUSERSPROFILE%\{6OHGTP3R-TSLQ-BYAK-BD9WRRULIBVI}\iexplore.exe" /F' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c taskkill /im <File name>.exe /f & erase /c taskkill /im tmme & exit' (with hidden window)
- '%WINDIR%\syswow64\schtasks.exe' /Create /SC MINUTE /MO 15 /TN "OAD1EJKRZTOV8G573P" /TR "%ALLUSERSPROFILE%\{6OHGTP3R-TSLQ-BYAK-BD9WRRULIBVI}\iexplore.exe" /F
- '%WINDIR%\syswow64\cmd.exe' /c taskkill /im <File name>.exe /f & erase /c taskkill /im tmme & exit